[ad_1] Microsoft released Advanced Search Queries (AHQ) and a PowerShell script to find and recover some of the Windows app shortcuts deleted Friday morning by a buggy Microsoft Defender ASR rule. Early in the morning of January 13, Microsoft released…
[ad_1] The Liquor Control Board of Ontario (LCBO), a Canadian government-owned company and the country's largest liquor retailer, has revealed that unknown attackers have hacked into its website to inject malicious code designed to steal information about customers and credit…
[ad_1] Brave Browser version 1.47 was released yesterday, adding the Snowflake extension in the software settings, allowing users to turn their devices into proxies that help users in censored countries connect to Tor. Brave had already added support for Tor…
[ad_1] Hackers hacked CircleCi in December after an engineer was infected with information-stealing malware that their 2FA-backed SSO session cookie, allowing access to the company's internal systems. Earlier this month, CircleCi revealed that they suffered a security incident and warned…
[ad_1] Google is working on a new feature that lets you disable or enable Chrome extensions on a per-site basis. The Chrome Web Store has many extensions, but there's a catch - some extensions can cause website issues, and some…
[ad_1] The LockBit ransomware operation has once again taken center stage in the ransomware news, as we learned yesterday they were behind the attack on Royal Mail. Royal Mail is the UK's largest mail delivery service and is considered critical…
[ad_1] Three popular WordPress plugins with tens of thousands of active installs are vulnerable to high-severity or critical SQL injection vulnerabilities, with proof-of-concept exploits now publicly available. SQL injection is a website security flaw that allows attackers to enter data…
[ad_1] Gen Digital, formerly Symantec Corporation and NortonLifeLock, sends data breach notifications to customers, notifying them that hackers have successfully breached Norton Password Manager accounts in credential stuffing attacks. According to a sample letter shared with the Vermont Attorney General's…
[ad_1] Microsoft has fixed a false positive triggered by a buggy Microsoft Defender ASR rule that would remove application shortcuts from the desktop, start menu, and taskbar. The issue affected app shortcuts on embedded devices after Microsoft Defender for Endpoint's…
[ad_1] Fortinet says unknown attackers exploited a patched FortiOS SSL-VPN vulnerability last month in attacks against government organizations and government-related targets. The security flaw (CVE-2022-42475) abused in these incidents is a heap-based buffer overflow weakness found in FortiOS SSLVPNd that…
